Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8877

8877 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-7854 Woo Inquiry <= 0.1 - Unauthenticated SQL Injection — Woo Inquiry 10.0 Critical2024-08-21
CVE-2024-8023 chillzhuang SpringBlade list sql injection — SpringBlade 6.3 Medium2024-08-20
CVE-2024-42361 GHSL-2023-256: HertzBeat Authenticated (guest role) SQL injection in /api/monitor/{monitorId}/metric/{metricFull} — HertzBeat 7.5 High2024-08-20
CVE-2024-43406 LF Edge eKuiper has a SQL Injection in sqlKvStore — ekuiper 8.8 High2024-08-20
CVE-2024-7780 Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection — Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 7.2 High2024-08-20
CVE-2024-7702 Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection via getLogHistory Function — Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 7.2 High2024-08-20
CVE-2024-7827 Shopping Cart & eCommerce Store <= 5.7.2 - Authenticated (Contributor+) SQL Injection via model_number Parameter — Shopping Cart & eCommerce Store 8.8 High2024-08-20
CVE-2024-7949 SourceCodester Online Graduate Tracer System fetch_genderit.php sql injection — Online Graduate Tracer System 6.3 Medium2024-08-20
CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection — Point of Sales and Inventory Management System 7.3 High2024-08-20
CVE-2024-7946 itsourcecode Online Blood Bank Management System User Signup register.php sql injection — Online Blood Bank Management System 7.3 High2024-08-20
CVE-2024-7937 itsourcecode Project Expense Monitoring System printtransfer.php sql injection — Project Expense Monitoring System 6.3 Medium2024-08-20
CVE-2024-7936 itsourcecode Project Expense Monitoring System transferred_report.php sql injection — Project Expense Monitoring System 6.3 Medium2024-08-19
CVE-2024-7935 itsourcecode Project Expense Monitoring System print.php sql injection — Project Expense Monitoring System 6.3 Medium2024-08-19
CVE-2024-7934 itsourcecode Project Expense Monitoring System execute.php sql injection — Project Expense Monitoring System 6.3 Medium2024-08-19
CVE-2024-7933 itsourcecode Project Expense Monitoring System Backend Login login1.php sql injection — Project Expense Monitoring System 7.3 High2024-08-19
CVE-2024-7931 SourceCodester Online Graduate Tracer System view_csprofile.php sql injection — Online Graduate Tracer System 6.3 Medium2024-08-19
CVE-2024-7930 SourceCodester Clinics Patient Management System get_packings.php sql injection — Clinics Patient Management System 6.3 Medium2024-08-19
CVE-2024-7913 itsourcecode Billing System addclient1.php sql injection — Billing System 7.3 High2024-08-18
CVE-2024-43145 WordPress GeoDirectory plugin <= 2.3.61 - SQL Injection vulnerability — GeoDirectory 8.5 High2024-08-18
CVE-2024-43207 WordPress Unite Gallery Lite plugin <= 1.7.62 - SQL Injection vulnerability — Unite Gallery Lite 8.5 High2024-08-18
CVE-2024-43282 WordPress Tutor LMS plugin <= 2.7.2 - SQL Injection vulnerability — Tutor LMS 7.6 High2024-08-18
CVE-2024-43286 WordPress Squirrly SEO plugin <= 12.3.19 - SQL Injection vulnerability — SEO Plugin by Squirrly SEO 8.5 High2024-08-18
CVE-2023-3416 tagDiv Opt-In Builder <= 1.4.4 - Authenticated (Admin+) SQL Injection — tagDiv Opt-In Builder 7.2 High2024-08-17
CVE-2023-3419 tagDiv Opt-In Builder <= 1.4.4 - Authenticated (Admin+) SQL Injection — tagDiv Opt-In Builder 7.2 High2024-08-17
CVE-2024-7853 SourceCodester Yoga Class Registration System sql injection — Yoga Class Registration System 6.3 Medium2024-08-16
CVE-2024-7845 SourceCodester Online Graduate Tracer System fetch_it.php sql injection — Online Graduate Tracer System 6.3 Medium2024-08-15
CVE-2024-7841 SourceCodester Clinics Patient Management System check_user_name.php sql injection — Clinics Patient Management System 6.3 Medium2024-08-15
CVE-2024-7839 itsourcecode Billing System addbill.php sql injection — Billing System 7.3 High2024-08-15
CVE-2024-6456 SQL Injection vulnerability in AVEVA Historian Server — Historian Web Server 8.8AIHighAI2024-08-15
CVE-2024-7838 itsourcecode Online Food Ordering System addcategory.php sql injection — Online Food Ordering System 7.3 High2024-08-15

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8877 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.